ALT-PU-2018-2705-1
Closed vulnerabilities
Published: 2016-05-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-4425
Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep recursion, stack consumption, and crash) via crafted JSON data.
Severity: HIGH (7.5)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- DSA-3577
- DSA-3577
- [oss-security] 20160501 CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160501 CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160502 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160502 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160503 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- [oss-security] 20160503 Re: CVE Request: Jansson: stack exhaustion parsing a JSON file
- https://github.com/akheron/jansson/issues/282
- https://github.com/akheron/jansson/issues/282
- https://github.com/akheron/jansson/pull/284
- https://github.com/akheron/jansson/pull/284
- https://github.com/akheron/jansson/pull/284/commits/64ce0ad3731ebd77e02897b07920eadd0e2cc318
- https://github.com/akheron/jansson/pull/284/commits/64ce0ad3731ebd77e02897b07920eadd0e2cc318